09/09/2008 17:30 FAX 7036831080 BACONSTHOMAS 12)020/055 

RECEIVED 

CENTRAL RAX CEKTER 

SEP 0 9 2008 

Atty. Ref. 3460-Z 

IN THE UNITED STATE8 PATENT AND TRADEMARK OFFICE 
BEFORE THE BOARD OF PATENT APPEALS AND INTERFERENCES 

In re application of 
Leon Benhamou 

Serial No. 10/695,952 Group Art Unit 2155 

Filed: October 30, 2003 Examiner Vitali A. Korobov 

For: Method and Apparatus for Securing Network 

Management Communications 

SECOND SUBSTITUTE 
BRIEF ON APPEAL 

Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

Sir: 

This is a second substitute appeal brief in furtherance of 
an appeal from the final rejection mailed December 2, 2005 
finally rejecting claims 1 - 18 of the above- identified 
application. 

A Substitute Appeal Brief was previously submitted on 
November 13, 2006, but a Notice of Non-Compliance was mailed on 
June 9, 2008, on the grounds that the brief does not contain a 
concise explanation of each of the independent claims, with 
reference to the specification by page and line number and to the 
drawings by reference character. In reply, the references to 
TPaae. line number, and reference character, included _in the 
prevjpua substitute bri?f ha^v^ b^er^ hiq^^xlicfhted ±n Bo^d Type (thQ 
brief was replete such references), and copies of claims 9. 13. 
and 15 with further references to line and page number have been 
added . 
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(i) • The Real Party in Interest 

The real party in interest is Alcatel. 

(ii) . Related Appeals and Interferences 

There are no related appeals or interferences. 



(iii) . Status of the Claims 
Claims 1-18, the only claims pending in the application, 
stand finally rejected ► 

(iv) . Status o£ the Amendments 

There were no amendments filed subsequent to the final 
rejection. 



PA6E13/47'RCVDAT9I9/20085:23:31PM [Eastern Daylight n^^^ 



09/09/2008 17:31 FAX 7036831080 



BACON&THOUAS 



121022/055 



Serial No. 10/695,952 ■ Page 3 

(v) • Suxmnary of Claimed Subject Matter 

Figure l of the drawings is reproduced for convenience of 
reference as follows: 
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As to claims 1, 9, 13 and 15, which constitute each of the 
independent claims in the application, the network 10 includes, 
as described in lines 24-- 26 on page 4 o£ the specification, a 
tnanagement station 12 and a plurality of nodes 14, the management 
station 12 being responsible for administering the nodes 14 . The 
management station 12 exchanges network management messages with 
each node 14 by transmitting and receiving network management 
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measages over the network 10.' Collectively, the management 
station 12 and the nodes 14 are referred to as network elements. 
The management station 12 include© a legacy management interface 
20, and each node includes a legacy agent 24. The legacy 
management interface generates legacy network management 
messages^ to which each legacy agent 24 has the ability to 
respond. Each legacy agent 24 may respond to particular legacy 
network management messages by generating another legacy network 
management message, which the legacy management interface has the 
ability to process. Each legacy agent 24 may also generate 
unsolicited legacy network management messages in order to, for 
example, report state changes or status changes. (Specification, 
page 5# first full paragraph, lines 6-18.) 

the management station 12 and the nodes 14 exchange legacy 
network management messages using a secure version of Simple 
Network Management Protcol (SNMP) , such as SNMPv3, The legacy 
network management messages are embedded within SNMP messages as 
user-defined SNMP objects. The management station 12 includes an 
SNMP' initiator 28- The SNMP initiator 28 receives a legacy 
network management message generated by the legacy interface 20, 
and embeds the legacy network management message within an SNMP 
message. The SNMP initiator 28 then transmits the SNMP message 
to one or more of the nodes 14. (Specification, page 5, lines 
19-27, second full paragraph.) 
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Each node 14 includes an SNMP agent 32 which receives an 
SNMP message from the SNMP initiator 28. The SNMP message 
includes as a user-defined object a legacy network management 
message generated by the legacy management interface 20 and 
embedded within the SNMP message by the SNMP initiator 28. The 
SNMP agent 32 extracts the legacy network management message from 
the SNMP message and passes it to the legacy agent 24 within the 
node 14 . The legacy agent 24 processes the legacy network 
management message in accordance with the legacy management 
protocol- If the legacy agent 24 prepares a second legacy 
network management message in response to the legacy network 
management message generated by the legacy interface 20, the 
legacy agent 24 passes the second legacy network management 
message to the SNMP agent 32. The SNMP agent 32 embeds the 
second legacy network management message as a user-defined object 
within an SNMP message, and sends the SNMP message to the SNMP 
initiator 28. Likewise, if the legacy agent 24 generates an 
unsolicited legacy network management message, the legacy agent 
24 passes the legacy network management message to the SNMP agent 
32. The SNMP agent 32 embeds the legacy network management 
message as a user-defined object within an SNMP message, and 
sends the SNMP message to the SNMP initiator 2 8.. (Specification, 
paragraph bridging pages 5 and 6t page 5, last two lines; page 6, 
lines 1-17.) 



PA(X16/47'RCVDAT3/9120085:23:31PM [Eastern Day^^^^ 



09/09/2008 17:33 FAX 



7036831080 



BACON&THOUAS 



il 025/055 



Serial No, 10/695,952 Page 6 



The method and apparatus of the present invention allow 
legacy network management messages to be transmitted with 
improved security, without requiring replacement of an entire* 
legacy system. Using simple SimP initiators and simple SNMP 
agents, legacy network management messages are embedded within 
SNMP messages and exchanged between network elements using a 
secure version of SNMP. Legacy software, in the form of agents 
and interfaces, is then able to process the legacy management 
messages (page 4, line 7 at seg) . 

In compliance with 37 C.F.R- 41.37 (V), the steps in claims 1 

- 6 have been annotated to make specific reference to the 

specification where they find support ► There are no "means" 

clauses in claims 7 - 18, but copies of independent claims 9, 13, 

and 15 have been annotated to include references to page, line 

number, and reference character. 

1 . A method of providing secure network management 
communications within a communication network, the 
communication network including a plurality of network 
elements each adapted to generate and process legacy 
network management messages in conformance with a 
legacy management system, the method comprising the 
steps of : 

embedding a first legacy network management 
message within a first Simple Network Management 
Protocol (SNMP) message at a first network element; 
(page 3, second full paragraph; page 5, second full 
par ag r aph ; ab s t r a c t . ) 

transmitting the first SNMP message over the 
network to a second network element; and (page 3, 
second full paragraph, abstract.) 

extracting the first legacy network management 
message from the first SNMP message at the second 
network element, (paragraph bridging pages 5 and 6i 
page 6, first full paragraph.) 
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2 . The method of claim 1 wherein the step of 
transmitting the first SNMP message comprises 
transmitting the first SNMP message in conformance with 
a secure version of SNMP. (page 6, last full 
para.graph . ) 

3 . The method of claim 2 wherein the step of 
transmitting the first SNMP message comprises 
transmitting the first SNMP message in conformance with 
SNMP version 3 (SNMPv3) . (page 5, second full 
paragraph; abstract . } 

4. The method of claim 1 wherein the legacy 
management system provides less security than SNMP. 
(page 7, second full paragraph, second sentence.) 

5. The method of claim 1 comprising the further steps 
of: 

generating the first legacy network management 
message at the first network element; and (page 5^ 
first full paragraph, last two sentences . ) 

processing the first legacy network management 
message at the second network element. (page 6, eeoond 
sentence from top of page . } 

6. The method of claim 5 comprising the further steps 
of: 

generating a second legacy network management 
message at the second network element in response to 
the first legacy network management message; (page S, 
third sentence from top of page . ) 

embedding the second legacy network management 
message within a second SNMP message at the second 
network element; (page 6, fourth sentence from top of 
page . ) 

transmitting the second SNMP message over the 
network to the first network element; and (page 6# 
fourth sentence from top of page.) 

extracting the second legacy network management 
message from the second SNMP message at the first 
network element. (page 6, first full paragraph,) 

9, A network management system within a communication 
network, the communication network including a 
management station and a node, comprising: 

a legacy interface at the management station for 
generating a first legacy network management message 
in conformance with a legacy network management 
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protocol (page 3, second full paragraph; page 5, 
second £ull paragraph) ; 

a Simple Network Management Protocol (snmp) 
initiator (28) at the management station for embedding 
the first legacy network, management message within a 
first SNMP message and for transmitting the first SNMP 
message to the node (page 3, second full paragraph); 

an SNMP agent (32) at the node for receiving the 
first SNMP message and for extracting the first legacy 
network management message from the first SNMP message 
(paragraph bridging pages 5 and 6) ; and 

a legacy agent (24) at the node for processing 
the legacy network management message in conformance 
with the legacy network management protocol - 

13, A Simple Network Management Protocol (SNMP) 
initiator at a management station within a 
communication network, comprising; 

instructions for receiving a legacy network 
management message which conforms to a legacy network 
management protocol ; 

instructions for embedding the legacy network 
management message within an SNMP message; and 

instructions for transmitting the SNMP message to 
a node within the communication network (page 5, line 
19 to page 5, line 27) . 

15. A Simple Network Management Protocol (SNMP) agent 
at a node within a communication network, comprising; 

instructions for receiving a first SNMP message 
from a management station within a communication 
network; 

instructions for extracting a first legacy 
network management message from the first SNMP 
message, the first legacy network management message 
conforming to a legacy network management protocol; 
and 

instructions for sending the first legacy network 
management message to a legacy agent at the node 
(paragraph bridging pages 5 and 6 -page 5, lines 2 8 et 
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(vi) . Grounds of Rejection to be Reviewed on Appeal 
Ground No* 1 

The rejection of claims 1, 2, 4-10 and 12-12 under 35 U.S.C. 
102(e) as being anticipated by Andrews (US 6,697,845) 
(hereinafter Andrews) , 



Ground No. 2 

The rejection of claims 3 and 11 under 35 U.S^C. 103(a) as being 
unpatentable over Andrews . 



(vii) . Argument 

Aa to Groxind No> 1 

It is respectfully suggested that the rejection of claims l, 
2, 4-10 and 12-18 under 35 U.S.C. §102 (e) as being anticipated by 
Andrews 6,697,845) is clearly erroneous. 

In his Background of Invention, Andrews states: 



Several ahfiftcnmingi aad dcficieadcs cadat ui ibe 6^- 
voQtioofll soIutiODS to piovidc support of mubiple SNMP 
ag/cDCs in a sioglc elemcflt. For cxiiaple» it is roquired ibai 
ihe SNMP manager be aware thai il is cominiiaicaiing wjtb 
muUipIe processiag eolitieSp agBots, associated with tbe 
managed elemeoi. Furiber^ ibe maaager may have lo swiidi 
between commumiy suingi based on what it needs lo 
reirieve. Also, the oQanager has lo be vc<otAgwi each time 
when it swiicbes beiweep two oommunity airiog? or between 
two independent, non-commuu'ly agents. Tbm, tbe purpose 
of managing ihe elemenl as a single managed node is 
Ibwifted beeause the manager docs pol *'see'* the node as 
single ptalfonni rather as a partitioned colleaion of agenu. 

Additionallyt conventional eommuoiiy siring^-baaed 
mulii-agent soIuijoAS do not easily adapt to Ihe Ag^t 
ExtenaibUily (AgentX) siandard which altows for muUiple 
subaiBieots to be registered with a common master agent that 
IS seen as a single SNMP entity by the maoagen 
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These are the shortcomings that Andrews sought to solve. 

Furthermore, in his Summary of the Invention, column 2, 

lines 36-48, Andrews states: 

An SNMP master agent and one or more subagents are 
provided for managing the node, which use the AaentX 
protocol for communication therebetween . At least a 
portion of a Management Information Base (MIB) 
associated with the management functionality of the 
managed node is supported by an SNMP peer agent that is 
proxied via an AgentX subagent (PSA) , gjie PSA 
registers the MIB portion with the SNMP master agent 
via an AgentX registration message . When an SNMP 
manager sends an SNMP managenient request to the SNMP 
master agent, the SNMP master agent parses the SNMP 
, management request into one or more AaentX protocol 
messages depending upon the subagents involved. 
[Emphasis added.] 

Appellant's claim 1 recites: 

.embedding a first legacy network management message 
within a first Simple Network Management Protocol 
(SNMP) message at a first network element; 

transmitting the first SNMP message over the 
network to a second network element; and 

extracting the first legacy network management 
message from the first SNMP message at the second 
network element . 

It can be seen therefore that this is the exact opposite of the 
Andrews patent . Andrews is using an AgentX to transport SNMP 
management information, and appellant's invention is concerned 
with using SNMP management to transport AgentX. The "wrapper" 
reference referred to by the Examiner (column 4/ line 31) does 
not change this fundamental difference. Note the claim language 
reads: "embedding a first legacy network management message 
within a first Simple Network Management Protocol (SNMP) 



PAGE 21/47'RCVDAT9/9I20085:23:31PM [Eastern Da^^^^ 



09/09/2008 17:36 FAX 7036831080 



BACON&THOMAS 



©030/ 



Serial No, 10/695,952 Page 11 

message.-.." Clearly, Andrews uses AgentX protocol for 
communi cat ion . 

The Examiner seeks to modify the express disclosure of 
Andrews by referring to "RFC2 741 -agent extensibility (AgentX) 
protocol version 1" at page 10 of the Final Rejection. 

Appellant's claims deal with Jlegagy ^^t^wprk management 
messages embedded in a first simple SNMP mesaaae . The RFC2741 
protocol does not refer to legacy network management messages. 

In appellant's claim 9, the language reads: 

a Simple Network Management Protocol (snmp) 
initiator at the management station for embedding the 
first legacy network management message within a first 
. SNMP message and for transmitting the first SNMP 
message to the node. ... 

Again, this language distinguishes from Andrews in that it 

denotes the opposite of the Andrews situation- 

In appellant's claim 13, the operative language is: 

Inetiructlons f oy ^mb^gLgliyiq th^ legacy ^etworjK 
mayi^g e yrien t m^qs^g^ Withjn SNMP me^gage, . . 

and this is not taught or suggested by Andrews. In fact, the 

opposite is taught. 

In appellant *s claim 15, note the language reading: 

instructions for extracting a first legacy network 
management message from the first SNMP message, the 
first legacy network management message conforming to a 
legacy network management protocol .... 

Clearly, this is not the case with Andrews . 

In view of the above, further and favorable reconsideration 

is respectfully requested. 
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As to Groiind No. 2 

The rejection of claims. 3 and 11 under 35 U.S»C* 103(a) as 
being unpatentable over Andrews is clearly in error. 

Claim 3 depends fr-om claim 1, and claim 11 depends from 
claim 9 and are patentable for the reason given above. 

CONCLUSION 

In view of the above, the Examiner clearly erred in 
rejecting claims 1 - IS and should be reversed. 



Suite 108 

801 North Pitt Street 
Alexandria, VA 22314 
Telephone: 703-684-8333 

Date: November 13, 2006 



In Che event this paper is deemed not timely filed* the applicant hereby petitions for an appropriate extension of 
time- The fee for Ais extension may be charged to Dqiosit Account No. 26-0090 along with any other 
additional fees which may be required with respect to this paper. 



Respectfully submitted 




Beil^amin E. Urcia, Reg- No. 33,805 
Attoxney for Appellant 
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(viii) CLAIMS APPENDIX 

1 . A method of providing secure network management 
communications within a communication network, the communication 
network including a plurality of network elements each adapted to 
generate and process legacy network management messages in 
conformance with a legacy management system, the method 
comprising the steps of: 

embedding a first legacy network management message within a 
first Simple Network Management Protocol (SNMP) message at a 
first network element; 

transmitting the first SNMP message over the network to a 
second network element; and 

extracting the first legacy network management message from 
the first SNMP message at the second network element. 

2 . The method of claim 1 wherein the step of transmitting the 
first SNMP message comprises transmitting the first SNMP message 
in conformance with a secure version of SNMP. 

3. The method of claim 2 wherein the step of transmitting the 
first SNMP message conprises transmitting the first SNMP message 
in conformance with SNMP version 3 (SNMPv3) , 

4. The method of claim 1 wherein the legacy management system 
provides less security than SNMP. 

5. The method of claim 1 comprising the further steps of; 
generating the first legacy network management message at 

the first network element; and 

processing the first legacy network management message at 
the second network element. 

CLAIMS APPENDIX - Page 1 of 4 
Serial No. 10/695,951 
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6- The method of claim 5 corqprising the further steps of: 

generating a second legacy network management message at the 
second network element in response to the first legacy network 
management message; 

embedding the second legacy network management message 
within a second SNMP message at the second network element; 

transmitting the second SNMP message over the network to the 
first network element; and 

extracting the second legacy network management message from 
the second SNMP message at the first network element . 

7. The method of claim 1 wherein the first network element is a 
management station, and wherein the second network element is a 
node . 

8. The method of claim 1 wherein the first network element is a 
node, and wherein the second network element is a management 
station. 

9. A network management system within a communication network, 
the communication network including a management station and a 
node, conprising: 

a legacy interface at the management station for generating 
a first legacy network- management message in conformance with a 
legacy network management protocol; 

a Simple Network Management Protocol (SNMP) initiator at the 
management station for embedding the first legacy network 
management message within a first SNMP message and for 
transmitting the first SNMP message to the node; 

an SNMP agent at the node for receiving the first SNMP 
message and for extracting the first legacy network management 
message from the first SNMP message; and 



CLAIMS APPENDIX - Page 2 of 4 
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a legacy agent at the node for processing the legacy network 
management message in conformance with the legacy network 
management protocol . 

10. The system of claim 9 wherein the SNMP initiator is adapted 
to transmit the first SNMP message in conformance with a secure 
version of SNMP. 

11. The system of claim 10 wherein the SNMP initiator is adapted 
to transmit the first SNMP message in conformance with SNMP 
version 3 (SNMPv3) . 

12. The system of claim 9 wherein the legacy network management 
protocol provides less security than SNMP. 

13. A Simple Network Management Protocol (SNMP) initiator at a 
management station within a communication network, con5>rising: 

instructions for receiving a legacy network management 
message which conforms to a legacy network management protocol; 

instructions for embedding the legacy network management 
message within an SNMP message; and 

instructions for transmitting the SNMP message to a node 
within the communication network. 

14. The SNMP initiator of claim 13 wherein the legacy network 
management protocol provides less security than SNMP- 

15. A Simple Network Management Protocol (snmp) agent at a node 
within a communication network, comprising: 

instructions for receiving a first SNMP message from a 
management station within a communication network; 

instructions for extracting a first legacy network 
management message from the first SNMP message, the first legacy 

CLAIMS APPENDIX - Page 3 of 4 
Serial No. 10/695,951 
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network management message conforming to a legacy network 
management protocol; and 

instructions for sending the first legacy network management 
message to a legacy agent at the node. 

16. The SNMP agent of claim 15 wherein the legacy network 
management protocol provides less security than SNMP. 

17. The SNMP agent of claim 15 further comprising; 
instructions for receiving a second legacy network 

management message from the legacy agents- 
instructions for embedding the second legacy network 

management message within a second SNMP message; and 

instructions for trcUismicting the second snmp message to the 

management station . 

18. The SNMP agent of claim 17 wherein the legacy network 
management protocol provides less security than SNMP. 
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Serial No. 10/695,951 



PA(£27I47*RCVDAT919/20085:23:31 PM [Eastern Da^^^^ 



09/09/2008 17:39 FAX 7036831080 



BACON&THOMAS 



0036/0 



(ix) . EVIDENCE APPENDIX 

None. 
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(x) . RELATED PRDCEEDINC3S APPENDIX 

There are no proceedings as mentioned in section (i) above, 
and accordingly no decisions rendered. 
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